www/gitea: Update to 1.8.2
Changelog:
* Fix possbile mysql invalid connnection error
* Handle invalid administrator username on install page
* Disable arm7 builds
* Fix default for allowing new organization creation for new users
* SearchRepositoryByName improvements and unification
* Fix u2f registrationlist ToRegistrations() method
* Allow collaborators to view repo owned by private org
* Use AppURL for Oauth user link
* Escape the commit message on issues update
* Fix regression for API users search
* Handle early git version's lack of get-url
* Fix wrong init dependency on markup extensions
https://github.com/go-gitea/gitea/releases/tag/v1.8.2
PR: 238239
Submitted by: stb@lassitu.de (maintainer)
Approved by: ports-secteam (miwi)
security/bro: Update to 2.6.2 and address several denial of service
vulnerabilities:
https://raw.githubusercontent.com/zeek/zeek/bb979702cf9a2fa67b8d1a1c7f88d0b56c6af104/NEWS
- Integer type mismatches in BinPAC-generated parser code and Bro
analyzer code may allow for crafted packet data to cause
unintentional code paths in the analysis logic to be taken due
to unsafe integer conversions causing the parser and analysis
logic to each expect different fields to have been parsed. One
such example, reported by Maksim Shudrak, causes the Kerberos
analyzer to dereference a null pointer. CVE-2019-12175 was
assigned for this issue.
- The Kerberos parser allows for several fields to be left
uninitialized, but they were not marked with an &optional attribute
and several usages lacked existence checks. Crafted packet data
could potentially cause an attempt to access such uninitialized
fields, generate a runtime error/exception, and leak memory.
Existence checks and &optional attributes have been added to the
relevent Kerberos fields.
- BinPAC-generated protocol parsers commonly contain fields whose
length is derived from other packet input, and for those that
allow for incremental parsing, BinPAC did not impose a limit on
how large such a field could grow, allowing for remotely-controlled
packet data to cause growth of BinPAC's flowbuffer bounded only
by the numeric limit of an unsigned 64-bit integer, leading to
memory exhaustion. There is now a generalized limit for how
large flowbuffers are allowed to grow, tunable by setting
"BinPAC::flowbuffer_capacity_max".
Approved by: ler (mentor, implicit)
Security: 177fa455-48fc-4ded-ba1b-9975caa7f62a
Approved by: ports-secteam (miwi)
Update e2fsprogs to new upstream release 1.45.2
Various bugfixes, and added Portuguese locale.
Update the Czech, Malay, Polish, Spanish, Swedish, and Ukarainian translations.
Release notes:
<http://e2fsprogs.sourceforge.net/e2fsprogs-release.html#1.45.2>
Approved by: ports-secteam (miwi)
tsocks(8) suggests the the following line (twice):
LD_PRELOAD=/usr/local/lib/tsocks/libtsocks.so
This is wrong, because the library is installed under regular path,
without the `tsocks' subdirectory.
Fix the manpage accordingly.
Notified by: danfe
Approved by: ports-secteam (blanket)
Belatedly add MANIFEST files for 11.3-BETA1.
Approved by: portmgr (implicit, re blanket)
Approved by: bdrewery (maintainer, implicit, re blanket)
Sponsored by: The FreeBSD Foundation
Approved by: portmgr (with hat)
Update neovim to 0.3.5
Maintenance release to fix issues found in v0.3.4.
options: properly reset directories on 'autochdir'
Remove MSVC optimization workaround for SHM_ALL
Make SHM_ALL to a variable instead of a compound literal #define
doc: mention "pynvim" module rename
screen: don't crash when drawing popupmenu with 'rightleft' option
look-behind match may use the wrong line number
:terminal : set topline based on window height
:recover : Fix crash on non-existent *.swp
Disable LuaJIT on non-x86 architectures
The version of LuaJIT in port doesn't work well (or at all) for neovim
on non-x86 architectures. Plus, some users (at least the submitter, who
made a good argument for it) may not want LuaJIT at all.
So, make LuaJIT an OPTION. Enable it by default, and exclude it from
all the archs that LuaJIT+neovim doesn't work on. Fall back instead on
normal Lua.
PR: 238079
Submitted by: Greg V
Fix build when using GCC. Needed by GCC architectures.
Tested for no breakage on amd64 with Clang.
PR: 235921
Reviewed by: tcberner
Approved by: tcberner (mentor)
devel/qt5: Follow-up to r499101
- Move the GCC related path fix into freebsd-g++/qmake.conf
Otherwise the inclusion of the GCC path would break clang
based systems when gcc-${GCC_DEFAULT} was installed.
- This might break GCC architectures again, and if so, that
will be fixed in a follow up commit.
PR: 235921
qt5: fix build on gcc architectures
- the sed call was only replacing one of the %%LOCALBASE%% by ${LOCALBASE},
due to the missing 'g' flag to the sed call.
- with this change the gcc architectures should be able to build Qt5 again.
PR: 237745
Submitted by: Mark Millard <marklmi26-fbsd@yahoo.com>, jwb
Reported by: pkubaj
Approved by: ports-secteam (joneum via irc)
After upgrading to version 20100318_4, users reported ValueError for
some disks [1]
Also fix Python 3.x compatibility [2]
While I'm here:
- Pet portlint, NO_* in USE{S} section
- Make concurrent-safe, installs executables in libexec
PR: 236873
Reported by: Thomas Eckhardt <freebsd eckieck de> [1]
Submitted by: Thomas Eckhardt <freebsd eckieck de> [1]
Submitted by: Krzysztof <ports bsdserwis com> (maintainer) [2]
Approved by: Krzysztof <ports bsdserwis com> (maintainer)
Approved by: ports-secteam (miwi, blanket: runtime bugfix)
This package supports Python 3.x support, so allow it accordingly. It is
required for an upcoming www/py-autobahn update (Python 2/3 compatible).
During QA, a UnicodeDecodeError was observed running tests under Python 3:
File "/usr/local/lib/python3.6/site-packages/py/_vendored_packages/iniconfig.py", line 82, in _parse
for lineno, line in enumerate(line_iter):
File "/usr/local/lib/python3.6/encodings/ascii.py", line 26, in decode
return codecs.ascii_decode(input, self.errors)[0]
UnicodeDecodeError: 'ascii' codec can't decode byte 0xc3 in position 165: ordinal not in range(128)
pytest uses the py package, which vendors the iniconfig package, which
isn't unicode aware [1][2][3]. Patch out unicode characters from setup.cfg
accordingly until it's resolved.
While investigating the cause of the above issue, a fix for setup.cfg's
encoding was identified, which removes the need to set the locale via
USE_LOCALE so remove it accordingly.
While I'm here:
- Pet portlint, spurious space at end of line in pkg-descr
- Add LICENSE_FILE/TEST_DEPENDS/test target/NO_ARCH
[1] https://github.com/pytest-dev/pytest/issues/3799
[2] https://github.com/RonnyPfannschmidt/iniconfig/issues/5
[3] https://github.com/RonnyPfannschmidt/iniconfig/issues/4
portlint: OK (looks fine.)
porttest: OK (poudriere: 12amd64{py36,py27})
maketest: 215 passed, 1 skipped in 3.29 seconds (Python 2.7)
maketest: 209 passed, 7 skipped in 3.07 seconds (Python 3.6)
Approved by: portmgr (blanket: ports/framework compliance)
Approved by: ports-secteam (joneum, blanket: ports/framework compliance)
This package installs scripts into LOCALBASE/bin, so must be concurrent
safe so packages for multiple Python versions don't conflict [1] on
installation.
[1] https://lists.freebsd.org/pipermail/freebsd-ports/2019-May/116293.html
Reported by: Luis Espinoza Jr. <ljejr hotmail com> (via freebsd-ports) [1]
Approved by: koobs (python, maintainer)
Approved by: ports-secteam (blanket: port bug(s))
audio/lv2: Fix Python (3.x) build, Add missing dependencies
While lv2 itself works fine with any Python version we support, the build
fails using a Python > 3.6, since the build bundles an old version of waf.
waf upstream fixed the bug in a later version. [1]
Restrict Python to up to 3.6 for now. [2]
While here:
- Add missing dependencies identified in QA. [3]
- Pet portlint (USES order)
[1] facdc0b173
PR: 235103
Reported by: cs [3]
Submitted by: Charlie Li <ml+freebsd vishwin info> [2][3]
Approved by: Michael Beer <beerml sigma6audio de>
audio/lv2: Remove CONFLICTS_INSTALL
lv2core expired and was deleted on 2016-11-30 in ports r427460
I only noted this after committing ports r499627, so remove it accordingly.
PR: 235103
Approved by: Michael Beer <beerml sigma6audio de> (maintainer)
Approved by: ports-secteam (blanket: build fix, missing dependencies)
mail/exim: Rename LMDB_LIBS to _LMDB_LIBS
It otherwise looks like an options helper that appears after
bsd.port.options.mk which will be flagged as a DEV_ERROR after
D19553. Rename LMDB_INCLUDES too for consistency.
mail/exim: Fix build (linker) flags
"-export-dynamic" in EXIM_DYNAMIC_LDFLAGS is a linker option, currently
producing a warning during build:
/usr/bin/ld: warning: cannot find entry symbol xport-dynamic; defaulting to 00000000004019c0
The only reason that plugin modules work is that the option is redundant
with -rdynamic.
This change makes the minimum necessary change not relying on linker
argument compatibility (- vs --).
PR: 236426
Submitted by: <andrew tao11 riddles org uk>
Approved by: portmgr (maintainer timeout: ~6 weeks, "just fix it")
Approved by: ports-secteam (blanket: port bug(s))
Update to upstream release 1.1.1
While on it:
- Pet portlint
- Fix missing USES=gnome
multimedia/libbluray: Fix environment variable conflict with portmaster
libbluray (> 1.0.2,1) uses the PACKAGES variable in its configure scripts
that contains the names of packages it depends on. Portmaster also uses the
PACKAGES environment variable.
Using portmaster to install libbluray results in a corrupted libbluray
pkgconfig file containing portmasters PACKAGES path:
Requires.private: /usr/home/koobs/repos/freebsd/ports/packages libxml-2.0 freetype2 fontconfig
This breaks libbluray consumers such as ffmpeg.
This change nulls out the PACKAGES variable during the configure stage of
the build to prevent the issue. [1]
While I'm here,
- Sort JAVA_* and USE_* entries.
PR: 226009
Reported by: Martin Birgmeier <d8zNeCFG aon at> [1]
Submitted by: VVD <vvd unislabs com> [1]
Approved by: portmgr (unmaintained port)
Approved by: ports-secteam (blanket: bugfix release(s), runtime bugfix, missing dependencies)
- Rejig test invocation to exclude a test that hangs
- Update pkg-descr WWW to https://, where it redirects to
Changelog:
https://www.fabfile.org/changelog-v1.html
PR: 235194
Submitted by: Dani <i.dani outlook com>
Approved by: ports-secteam (blanket: bugfix release(s))
Upstream supports and tests against up to Python 3.6 [1] and declares up to
3.6 in its Trove Classifiers [2].
Fix incorrect Python version support declaration in USES=python accordingly,
allowing Python 3.x builds. [3]
While I'm here, add TEST_DEPENDS and a test target to help with QA.
[1] https://github.com/diyan/pywinrm/blob/master/.travis.yml
[2] setup.py: 'Programming Language :: Python :: 3.6'
PR: 237178 [3]
Reported by: <timp87 gmail com> [3]
Approved by: portmgr (blanket: bug fix, framework compliance)
Approved by: ports-secteam (blanket: bugfix)
